Set Up Two-Factor Authentication

Have more questions? Submit a request

Two-factor authentication (2FA) strengthens account security by requiring two methods to verify your identity. For your Clio account, this means logging in with your username and password, followed by a time-sensitive code generated by an authentication app.

By enabling 2FA, you are adding an extra layer of security in case your password is compromised. If someone tries logging in with your username and password, you have peace of mind knowing they cannot access your account without a time-sensitive code. Adopting 2FA ultimately improves your data security and can prevent 99% of account takeovers.

Tip: If you are an administrator at your firm and have 2FA enabled on your own account, you can invite or require other firm users to enable 2FA on their accounts. Learn more here.

Set up 2FA

Each firm user will need to set up 2FA on their own account. Enabling 2FA requires the smartphone that you will install the authentication app on, your Clio username and password, and the time-based one-time password (TOTP) generated by your authentication app.

What is a TOTP? A time-based one-time password (TOTP) is a temporary code generated by an algorithm that uses current time as an input. For your Clio account, this means a six-digit code that appears in your authentication app for 30 seconds before it is replaced with a new six-digit code.

Step 1: Download an authentication app

Before enabling 2FA in your Clio account, start by downloading an authentication app on your smartphone or computer. Clio supports standard TOTP applications, including the following:

  • Authy
  • Google Authenticator
  • 1Password
  • Microsoft Authenticator
  • Duo Mobile
  • OneLogin
Note: We recommend that you use Authy since it is available on more platforms (iOS, Android, Windows, Mac, and Linux) and offers optional encrypted cloud backup of your TOTP tokens—this makes it easier to use restore your codes if you lose access to your device.

Step 2: Turn on 2FA in Clio

After downloading an authentication app, you can enable 2FA in your Clio Manage or Clio Grow settings. When 2FA is enabled in one account, either Clio Manage or Grow, it is automatically enabled in the other account.

Clio Manage Clio Grow
  1. Go to Settings > Security.
  2. Click Update your security settings under My Security.
  3. Scroll down to Two-factor authentication (2FA) and click Enable 2FA.
  4. Enter your Clio login password and click Continue.
  5. Open your authentication app and add a new account by clicking the + icon or by clicking add account.
  6. Use your device’s camera to scan the QR code that appears in Clio. You can also manually enter the code.
    Note: If the QR code is not visible, you may already have 2FA set up on another device.
  7. In Clio, click Continue, enter the six-digit code generated by your authenticator, and then click Continue again.
  8. Save a copy of your emergency backup codes and click Continue. You will need these codes in case you lose access to your authenticator. If you download the backup codes to your computer, you can also print them.
  9. Optional: Select Enable push notifications to receive a push notification on the Clio mobile app. If you select this option, you will no longer need to enter a six-digit login code, but you will need to be signed in to the Clio mobile app to receive push notifications.
  10. Follow the prompts and select either Sign in to Clio Grow or Sign in to Clio Manage
  11. Enter your Clio username and password, and then enter the TOTP code generated by your authenticator.

Tip: When prompted to enter the TOTP code at your next log in, check the box for Keep me logged in for a week to extend your session by a week.


Backup codes

If you lose your phone or lose access to your authentication app, and if you cannot sign in to Clio (see below), you can use one of the emergency backup codes that you saved when you first set up 2FA. To enter a backup code:

  1. Enter your username and password.
  2. Under Security code, click Use backup security code. Do not enter the backup code in the Security code field.
  3. Under Emergency backup code, enter one of your backup codes and click Sign in.
Important: You can use any code to sign in, but each code can only be used once.


Unable to log in

If you do not have access to your authenticator, you may still be able to log in to Clio since 2FA sessions can be extended up to a week. If you can still log in, re-add your account to your new device or alternate authentication app.

  1. Go to Settings > Security > My Security > Update your security settings.
  2. Next to Security codes click View.
  3. Enter your Clio password.
  4. When the QR code appears, scan the code on your new device or alternate authentication app.
  5. Follow the prompts to complete set up.

Tip: If you get a new phone, lose your device, cannot access your Clio account as described above, or do not have access to your backup codes, ask an administrator at your firm to disable 2FA for your account.

Note: If none of the steps above are effective, you will need to contact Clio Support to proceed with the account recovery process. Learn more here.


Need more help?

Was this article helpful?
0 out of 0 found this helpful